CVE-2019-6133
Publication date 11 January 2019
Last updated 24 July 2024
Ubuntu priority
In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. This is related to lack of uid checking in polkitbackend/polkitbackendinteractiveauthority.c.
From the Ubuntu Security Team
Jann Horn discovered a race condition in the fork() system call in the Linux kernel. A local attacker could use this to gain access to services that cache authorizations.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| linux | ||
| 18.04 LTS bionic |
Fixed 4.15.0-46.49
|
|
| 16.04 LTS xenial |
Fixed 4.4.0-143.169
|
|
| 14.04 LTS trusty |
Fixed 3.13.0-166.216
|
|
| linux-aws | ||
| 18.04 LTS bionic |
Fixed 4.15.0-1033.35
|
|
| 16.04 LTS xenial |
Fixed 4.4.0-1077.87
|
|
| 14.04 LTS trusty |
Fixed 4.4.0-1039.42
|
|
| linux-aws-hwe | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial |
Fixed 4.15.0-1033.35~16.04.1
|
|
| 14.04 LTS trusty | Not in release | |
| linux-azure | ||
| 18.04 LTS bionic |
Fixed 4.18.0-1013.13~18.04.1
|
|
| 16.04 LTS xenial |
Fixed 4.15.0-1040.44
|
|
| 14.04 LTS trusty |
Fixed 4.15.0-1040.44~14.04.1
|
|
| linux-azure-edge | ||
| 18.04 LTS bionic |
Fixed 4.18.0-1013.13~18.04.1
|
|
| 16.04 LTS xenial |
Fixed 4.15.0-1040.44
|
|
| 14.04 LTS trusty | Not in release | |
| linux-euclid | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Ignored | |
| 14.04 LTS trusty | Not in release | |
| linux-flo | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Ignored | |
| 14.04 LTS trusty | Not in release | |
| linux-gcp | ||
| 18.04 LTS bionic |
Fixed 4.15.0-1028.29
|
|
| 16.04 LTS xenial |
Fixed 4.15.0-1028.29~16.04.1
|
|
| 14.04 LTS trusty | Not in release | |
| linux-gcp-edge | ||
| 18.04 LTS bionic |
Fixed 4.15.0-1028.29
|
|
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Not in release | |
| linux-gke | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Ignored | |
| 14.04 LTS trusty | Not in release | |
| linux-gke-4.15 | ||
| 18.04 LTS bionic |
Not affected
|
|
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Not in release | |
| linux-gke-5.0 | ||
| 18.04 LTS bionic |
Not affected
|
|
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Not in release | |
| linux-goldfish | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Ignored | |
| 14.04 LTS trusty | Not in release | |
| linux-grouper | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Not in release | |
| linux-hwe | ||
| 18.04 LTS bionic |
Fixed 4.18.0-16.17~18.04.1
|
|
| 16.04 LTS xenial |
Fixed 4.15.0-46.49~16.04.1
|
|
| 14.04 LTS trusty | Not in release | |
| linux-hwe-edge | ||
| 18.04 LTS bionic |
Not affected
|
|
| 16.04 LTS xenial |
Fixed 4.15.0-46.49~16.04.1
|
|
| 14.04 LTS trusty | Not in release | |
| linux-kvm | ||
| 18.04 LTS bionic |
Fixed 4.15.0-1030.30
|
|
| 16.04 LTS xenial |
Fixed 4.4.0-1041.47
|
|
| 14.04 LTS trusty | Not in release | |
| linux-lts-trusty | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Not in release | |
| linux-lts-utopic | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Ignored | |
| linux-lts-vivid | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Ignored | |
| linux-lts-wily | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Ignored | |
| linux-lts-xenial | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty |
Fixed 4.4.0-143.169~14.04.2
|
|
| linux-maguro | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Not in release | |
| linux-mako | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Ignored | |
| 14.04 LTS trusty | Not in release | |
| linux-manta | ||
| 18.04 LTS bionic | Not in release | |
| 16.04 LTS xenial | Not in release | |
| 14.04 LTS trusty | Not in release | |
| linux-oem | ||
| 18.04 LTS bionic |
Fixed 4.15.0-1034.39
|
|
| 16.04 LTS xenial | Ignored | |
| 14.04 LTS trusty | Not in release | |
| linux-oracle | ||
| 18.04 LTS bionic |
Fixed 4.15.0-1009.11
|
|
| 16.04 LTS xenial |
Fixed 4.15.0-1009.11~16.04.1
|
|
| 14.04 LTS trusty | Not in release | |
| linux-raspi2 | ||
| 18.04 LTS bionic |
Fixed 4.15.0-1032.34
|
|
| 16.04 LTS xenial |
Fixed 4.4.0-1104.112
|
|
| 14.04 LTS trusty | Not in release | |
| linux-snapdragon | ||
| 18.04 LTS bionic |
Fixed 4.15.0-1053.57
|
|
| 16.04 LTS xenial |
Fixed 4.4.0-1108.113
|
|
| 14.04 LTS trusty | Not in release | |
| policykit-1 | ||
| 18.04 LTS bionic |
Fixed 0.105-20ubuntu0.18.04.5
|
|
| 16.04 LTS xenial |
Fixed 0.105-14.1ubuntu0.5
|
|
| 14.04 LTS trusty |
Fixed 0.105-4ubuntu3.14.04.6
|
Notes
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
6.7 · Medium
|
| Attack vector | Local |
| Attack complexity | High |
| Privileges required | Low |
| User interaction | Required |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | High |
| Availability impact | High |
| Vector | CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-3903-2
- Linux kernel (HWE) vulnerabilities
- 6 March 2019
- USN-3934-2
- PolicyKit vulnerability
- 2 September 2019
- USN-3934-1
- PolicyKit vulnerability
- 3 April 2019
- USN-3901-1
- Linux kernel vulnerabilities
- 5 March 2019
- USN-3901-2
- Linux kernel (HWE) vulnerabilities
- 5 March 2019
- USN-3910-2
- Linux kernel (Xenial HWE) vulnerabilities
- 15 March 2019
- USN-3910-1
- Linux kernel vulnerabilities
- 15 March 2019
- USN-3908-1
- Linux kernel vulnerability
- 12 March 2019
- USN-3908-2
- Linux kernel (Trusty HWE) vulnerability
- 13 March 2019
- USN-3903-1
- Linux kernel vulnerabilities
- 6 March 2019